Choosing a vendor to meet your information technology or cybersecurity needs is not an easy task. To help, the National Cybersecurity Alliance created a Security Vendor Questionnaire checklist of critical questions you should ask current or potential vendors.
Especially prior to negotiating a contract, confirm that both the managed IT service provider and your organization understand the precise terms of the services to be provided, the extent of the services (protecting the whole of your IT system or only a portion of it), and ensure that your organization's data security will be monitored to protect your donors or program clients' sensitive information.